KFC sent an email this week to 1.2 million members of its Colorel's Club loyalty program, informing them that the company found that its website had been attacked and some users' accounts might be stolen, so it reminded members to change their passwords as soon as possible.
It is not clear what information was stolen by the hacker, but from KFC's suggestion that the user change the password of other services at the same time, it is likely that the user's e-mail contact information and the password of other services were also stolen.
Fortunately, KFC did not collect and save too much personal information of users through its customer feedback plan, so it did not disclose users' financial sensitive information. However, this matter is still very disappointing. I am also a member of Colorel's Club, and changing the password has kept me busy.
At least, KFC has been aware of the growing risk of cyber attacks, and has introduced some security measures to prevent such incidents from happening again. But frankly, first of all, such incidents should not have happened.
For whatever reason, if a company stores our personal information in a database, it has the responsibility to protect the security of the information, no matter how much it pays. KFC obviously failed to do this.
We don't know how hackers intrude into KFC's system, but if KFC uses its protection formula to protect the user's personal information database, our password should still be secure.
The article is adapted from Rice Hull Net: http://it224.com/
